Beckhoff Twincat Exposure of Sensitive Information to an Unauthorized Actor

Beckhoff's TwinCAT RT network driver for Intel 8254x and 8255x is providing EtherCAT functionality. The driver implements real-time features. Except for Ethernet frames sent from real-time functionality, all other Ethernet frames sent through the driver are not padded if their payload is less tha...

Security Bulletin: TLS padding vulnerability affects Informix Client Software Development Kit (CSDK) ( CVE-2014-8730)

Summary Informix Client Software Development Kit CSDK can be affected by a TLS Transport Layer Security padding vulnerability which can allow a remote attacker to obtain sensitive information. Vulnerability Details The following vulnerability affects IBM Informix Client Software Development Kit...

Security Bulletin: TLS padding vulnerability affects Informix Dynamic Server ( CVE-2014-8730)

Summary IBM Informix Dynamic Server can be affected by a TLS Transport Layer Security padding vulnerability which can allow a remote attacker to obtain sensitive information. Vulnerability Details The following vulnerability affects IBM Informix Dynamic Server. CVEID: CVE-2014-8730 DESCRIPTION: I...

SUSE-SU-2021:0436-1 Security update for openvswitch

This update for openvswitch fixes the following issues: - CVE-2020-35498: Fixed a denial of service related to the handling of Ethernet padding bsc1181742...

CVE-2020-20950

Bleichenbacher's attack on PKCS 1 v1.5 padding for RSA in Microchip Libraries for Applications 2018-11-26 All up to 2018-11-26. The vulnerability can allow one to use Bleichenbacher's oracle attack to decrypt an encrypted ciphertext by making successive queries to the server using the vulnerable...

UBUNTU-CVE-2018-16868

A Bleichenbacher type side-channel based padding oracle attack was found in the way gnutls handles verification of RSA decrypted PKCS1 v1.5 data. An attacker who is able to run process on the same physical core as the victim process, could use this to extract plaintext or in some cases downgrade...

Security Bulletin: TLS padding vulnerability affects IBM Rational ClearQuest (CVE-2014-8730)

Summary Transport Layer Security TLS padding vulnerability via a POODLE Padding Oracle On Downgraded Legacy Encryption like attack affects IBM Rational ClearQuest. Vulnerability Details CVE-ID: CVE-2014-8730 Description: IBM Rational ClearQuest could allow a remote attacker to obtain sensitive...

Security Bulletin: TLS padding vulnerability affects Communications Server for Data Center Deployment, Communications Server for AIX, Communications Server for Linux, and Communications Server for Linux on System z (CVE-2014-8730)

Summary Transport Layer Security TLS padding vulnerability via a POODLE Padding Oracle On Downgraded Legacy Encryption like attack affects Communications Server for Data Center Deployment, Communications Server for AIX, Communications Server for Linux, and Communications Server for Linux on Syste...

Security Bulletin: TLS padding vulnerability affects Communications Server for Windows (CVE-2014-8730)

Summary Transport Layer Security TLS padding vulnerability via a POODLE Padding Oracle On Downgraded Legacy Encryption like attack affects Communications Server for Windows. Vulnerability Details CVE-ID: CVE-2014-8730 DESCRIPTION: Product allows a remote attacker to obtain sensitive information,...

Security Bulletin: TLS padding vulnerability affects IBM TXSeries for Multiplatforms (CVE-2014-8730)

Summary Transport Layer Security TLS padding vulnerability via a POODLE Padding Oracle On Downgraded Legacy Encryption like attack affects TXSeries for Multiplatforms. Vulnerability Details CVE-ID: CVE-2014-8730 DESCRIPTION: Product could allow a remote attacker to obtain sensitive information,...

Security Bulletin: TLS padding vulnerability affects TPF Toolkit (CVE-2014-8730)

Summary Transport Layer Security TLS padding vulnerability via a POODLE Padding Oracle On Downgraded Legacy Encryption like attack affects TPF Toolkit. Vulnerability Details CVE-ID: CVE-2014-8730 DESCRIPTION: Product could allow a remote attacker to obtain sensitive information, caused by the...

Security Bulletin: TLS padding vulnerability affects IBM HTTP Server shipped with IBM Presence Zones (CVE-2014-8730)

Summary IBM HTTP Server is shipped as a component of IBM Presence Zones. Information about a security vulnerability affecting IBM HTTP Server has been published in a security bulletin. Vulnerability Details Consult the TLS padding vulnerability affects IBM HTTP Server CVE-2014-8730 security...

Security Bulletin: TLS padding vulnerability affects IBM MessageSight (CVE-2014-8730)

Summary Transport Layer Security TLS padding vulnerability via a POODLE Padding Oracle On Downgraded Legacy Encryption like attack affects IBM MessageSight. Vulnerability Details CVE-ID: CVE-2014-8730 DESCRIPTION: Product could allow a remote attacker to obtain sensitive information, caused by th...

Security Bulletin: GSKit TLS Padding Vulnerability affects IBM Tivoli/Security Server on Asset and Service Management (CVE-2014-8730)

Summary IBM Tivoli/Security Directory Server ITDS/ISDS are affected by a TLS padding vulnerability, which could allow a remote attacker to obtain sensitive information. Vulnerability Details CVE-ID: CVE-2014-8730 DESCRIPTION: IBM Security Directory Server could allow a remote attacker to obtain...

Security Bulletin: A Security vulnerability in IBM HTTP Server shipped with WebSphere Application Server affects IBM Tivoli Network Performance Manager Wireless Platform (CVE-2014-8730)

Summary There is vulnerability in IBM® HTTP Server IHS that is shipped with IBM WebSphere Application Server as a component of IBM Tivoli Network Performance Manager Wireless Platform. Vulnerability Details CVE ID: CVE-2014-8730 DESCRIPTION: IBM HTTP Server could allow a remote attacker to obtain...

Security Bulletin: TLS padding vulnerability affects IBM Tivoli/Security Directory Server shipped with IBM Tivoli Network Performance Manager Wireless Platform (CVE-2014-8730)

Summary IBM Tivoli/Security Directory Server ITDS/ISDS as a component of IBM Tivoli Network Performance Manager Wireless Platform are affected by a TLS padding vulnerability, which could allow a remote attacker to obtain sensitive information Vulnerability Details The following vulnerability...

Security Bulletin: A security vulnerability has been identified in Informix Dynamic Server and IBM® DB2® shipped with IBM Tivoli Network Manager IP Edition (CVE-2014-8730)

Summary Informix Dynamic Server and IBM® DB2® are shipped as a component of IBM Tivoli Network Manager IP Edition. Information about a security vulnerability affecting Informix Dynamic Server and IBM® DB2® have been published in a security bulletin. Vulnerability Details Please consult the securi...

Security Bulletin: A Security vulnerability in IBM HTTP Server shipped with WebSphere Application Server affects Tivoli Netcool Performance Manager TNPM Wireline (CVE-2014-8730).

Summary There is vulnerability in IBM® HTTP Server IHS that is shipped with IBM WebSphere Application Server as a component of IBM Tivoli Network Performance Manager Wireline Platform. Information about a security vulnerability affecting Tivoli Integrated Portal has been published in a security...

Security Bulletin: TLS padding vulnerability affects IBM Rational RequisitePro (CVE-2014-8730)

Summary Transport Layer Security TLS padding vulnerability via a POODLE Padding Oracle On Downgraded Legacy Encryption like attack affects IBM Rational RequisitePro. Vulnerability Details CVE-ID: CVE-2014-8730 Description: IBM Rational RequisitePro could allow a remote attacker to obtain sensitiv...

Security Bulletin: TLS padding vulnerability affects IBM Security SiteProtector (CVE-2014-8730)

Summary Transport Layer Security TLS padding vulnerability via a POODLE Padding Oracle On Downgraded Legacy Encryption like attack affects IBM Security SiteProtector System and IBM Security SiteProtector Appliance. Vulnerability Details CVE-ID: CVE-2014-8730 DESCRIPTION: Product could allow a...